On September 25, DataBreaches.net reported on a ransomware attack suffered by United Health Centers of San Joaquin Valley (UHC). BleepingComputer had also reported on the incident the day before. Neither this site nor BleepingComputer had been able to get a statement from UHC at the time, but it was clear from the data dumped by…
Category: Malware
Yemeksepeti Hacked Again? Ransom Demanded, Claims Disputed
Michael Lewis reports: Yemeksepeti, which was hacked last March and whose data was stolen, was again attacked by a hacker group. As a result of the said attack, user data was captured along with many metrics. Among the captured information usernames, phone numbers, addresses, registered credit cardslast 4 digits of yellow is located. It is stated that the number of…
Ransomware threat actors dump NHS records on the ‘dark web’: Highly sensitive medical documents are leaked online after hackers’ £3million Bitcoin ransom is rejected
Last week, this site reported that a U.K. fertility clinic had been impacted by an attack on Stor-a-File, their document scanning vendor. This week, there was more bad news for Stor-A-File clients. Michael Powell, Molly Clayton, and Kevin O’Sullivan report that Clop threat actors have dumped sensitive files on their dark web leak site when…
NJ: Spotswood Public Schools notifying 424 employees impacted by a ransomware incident
Here’s another k-12 data security incident that does not appear to have made news or to have been revealed on a school district’s website (at least as far as DataBreaches.net can determine): On behalf of Spotswood Public Schools in New Jersey, Baker & Hostetler notified the Maine Attorney General’s Office that Spotswood experienced a ransomware…
Episcopal Retirement Services suffered two ransomware attacks in a one-month period
It’s bad enough experiencing one ransomware attack. Imagine experiencing two, because that’s what Episcopal Retirement Services (ERS) in Ohio has been dealing with. On or about September 24, ERS discovered that i had been the victim of what it describes as a cyberattack that impacted its systems and servers. Then on October 22, they experienced…
[Conti] Ransomware Group In-Depth Analysis
PRODAFT Threat Intelligence (PTI) Team has obtained valuable insights on the inner workings of the Conti ransomware group. The PTI team accessed Conti’s infrastructure and identified the real IP addresses of the servers in question. This report provides unprecedented detail into the way the Conti ransomware gang works, how they select their targets, how many…